3 matches found
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft
This is a PoC exploit for CVE-2013-0001, a SQL injection vulnerability scanner written in Python. The target product/service is a web application, and the vulnerability class is SQL injection. The probable entry point is the sqliscanner.py script, which is invoked by running the script with the -...
CVE-2013-0001
CVE-2013-0001 concerns a vulnerability in the Windows Forms (WinForms) component of Microsoft .NET Framework (1.0 SP3–4.5). The root cause is improper initialization of memory arrays and use of a pointer to unmanaged memory, enabling information disclosure. Exploitation could occur via a crafted ...
MS13-004: Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (2769324)
The remote Windows host is running a version of Microsoft .NET Framework that is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the way the Windows Forms in .NET Framework handle pointers to unmanaged memory locations. CVE-2013-0001 - A buffer overflow...